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WHAT IS CLAIMED IS: 



/ 1. An apparatus for executing a/secure program in a computer system, 

2 wherein the ability to make workable copies of the secure program from the computer 

3 system is inhibited, the apparatus comprising 

4 a program memory in whicl/the secure program data is stored in an 

5 encrypted form; 

6 a security chip coupled tcf the program memory, the security chip 

7 comprising: 

8 means for decrypting portions of the secure program into a clear 

9 portion and a remainder portion; 

10 means for prrfvkfftig the clear portion to memory locations 

1 1 accessible by a processor; and 

remainder memory for storing the remainder portion of the secure 



12 



13 program, the remainder memory not directly accessible by the processor; 



14 

15 processor; and 



means for requesting subsets of the remainder portion for use by the 



16 I means, within the security chip, for checking that the requested subset is a 
pAcfc* *4 ****** oW 

17 A subset e xpected to be r e quest e d given ai stored state for the processor. 



2. The apparatus of claim 1, wherein the secure program stored in the 

2 program memory is storedjviih the program portion and the remainder portion stored 

3 separately. 



1 3. The apparatus of claim 1, wherein the remainder portion is a set of 

2 branch instructions of the secure program. 



1 4. The apparatus of claim 3, wherein the security chip further includes 

2 means for caching branch statements based on recently executed branches. 



tus of claim 1 , wherein the means for decrypting branches 
tion key. 



5. The apj 
2 is configured with a dec 




6. 

volatile memory. 
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The apparatus of claim 5, wherein the decryption key is stored in 



7. The apparatus of claim 6, wherein the volatile memory is distributed 
over the security chip, the security chip further comprising overlying circuitry which 
overlies and obscures at least a part of the volatile memory. 

8. The apparatus of olaim 7, wherein the overlying circuitry is coupled to 
a power source for the volatile memory such that the removal of the overly circuitry 
removes the power to the overlying circuitry. 



9. The apparatus of claim 1, further comprising a clocking means, within 
the security chip, for determigftjj^a rate of instruction execution of the processor, 
wherein the security chip /eroofids to processor requests only when the clocking means 
determines that the rate is within an expected range. 

10. The apparatus of claim 1, further comprising a data decompressor for 
decompressing the secure program after decryption, wherein the secure program is 
compressed before encryption. 

11. The apparatus of claim 10, wherein the decompressor is an entropy 

decoder. 



12. The apparatus of claim 1, further comprising a checksum means, 
within the security chip, foi/determining a checksum of bus accesses on a processor bus, 
wherein the security chip responds to processor requests only when the determined 
checksum matches an expectpd checksum. 

13. The apparatus of claim 1, further comprising a data scrambler for 
reordering data elements of the secure program according to a reversible and 
deterministic pattern determined by a key value, wherein the secure program is reordered 
by the inverse of the data scrambler before being placed in the program memory. 
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14. The apparatus of claim 13, wherein the data scrambler comprises a 
plurality of first-in, first-out buffers. 



15. The apparatus of claim 13, wherein the reversible and deterministic 
pattern is generated by reference to the output of a pseudorandom number generator. 



16. The apparatus of claim 1, wherein the means for decrypting operates 
based on the key value and the output of a pseudorandom number generator. 



17. The appapdtus of claim 1, further comprising means for altering the 
operation of the security chip arm the-'flow of the program when said means for checking 
detects that an unexpecte^ubpt has been requested, where by the altered operation 
causes a negative effect on the program flow or operation. 



18. The apparatus of claim 17, wherein the means for altering is a 
means for halting the processor. 

19. An apparatus for^se curin g- program d&tafetem unauthorized 
copying, comprising; 

a branch separator for extracting branch statements from the program data; 
a compressor for compressing the extracted branch statements and a 
remainder of the program data to form compressed data; and 

an encryptor for encrypting the compressed data. 

/20. The apparatus off claim 19, wherein the branch separator comprises: 
' means for automatically generating checksum data representing checksums 
of program data; and 

means for automatically Generating timing information used to assess 
timing of program data processing, lr~ 

whereby the checksum data and the timing information are compressed by 
the compressor and encrypted/by tpe encryptor. 



# 
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1 21. A method of executing a secure prograrfi to prevent copying of the 

2 secure program in a usable form from information acquired over an insecure processor 

3 bus, comprising the steps of: 

4 accepting a request from the insecu|€ processor for a block of program 

5 data, the block of program data including at le#st one of one or more program 

6 instructions or one or more program data elements; , 

7 decrypting, in a secure manner, the block of program data into a clear 

8 portion and a remainder portion; 



9 
10 



providing the clear r&rtion to the, insecure processor; and 
accepting requests from the insecure processor for elements of the 



1 1 remainder portion; ^ 



12 check klgJijat the request is, proper given the state of the insecure processor 

13 and previous reques s;/ / 

14 processing the requests from the insecure processor for elements of the 

15 remainder portion; and 

16 responding to the requests, wherein underlying remainder portion elements 

17 are not feasibly determined by reference to only the information content of a response to 

18 a request. 



1 22. The method of claim 21, further comprising the steps of: 

2 separating a program into the clear portion and the remainder portion to 

3 form a secure program; and 

4 . encrypting the secure program prior to placing the secure program in a 

5 memory accessible by attackers intent on making unauthorized copies of the secure 

6 program. 



1 23. The 

2 separating branch inst 

3 program. 



:laim 22, wherein the step of separating is a step of 
a£is of the secure program from other instructions of the secure 



1 

2 



24. The method of claim 21, wherein the step of decrypting is performed 
with a decryption key. 



25. The method of claim 24, further comprigmg the step of storing the 

2 decryption key in volatile memory. X 

1 26. The method of claim 25, further comprising the steps of: 

2 providing a power source to the^volatile memory; 

3 covering the volatile memojy with a circuit such that the power source is 

4 removed from the volatile memory whgn the circuit is disturbed and the contents of the 

5 volatile memory cannot be^^i^^^sured without^emoving the circuit. 

1 27. The m^Kxi of claim 21, further comprising the step of checking a 

2 rate of instruction execution of the processor/prior to providing a response to a request 

3 for information. / 

1 28. The method of claim 21, further comprising the step of 

2 decompressing the secure program after decryption, wherein the secure program is 

3 compressed before encryption. 

1 29. The method of claim 21, further comprising the steps of: 

2 determining a checksum of bus /accesses on a processor bus; 

3 comparing the checksum to a precalculated checksum expected for the 

4 instructions of the secure program which were expected to be executed; and 

5 preventing the unobstructed operation of the secure program when the 

6 checksum and the precalculated checksum/differ. 

1 30. The method of claim/2^jjuther comprising a steps of: 

2 scrambling an order of data elements of the secure program according to a 

3 reversible and deterministic pattern deterfnined by a key value prior to storage in a 

4 memory accessible by attackers; and / 

5 descrambling the order of the data elements upon proper request of the 

6 processor. / 
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31- The method of claim 30, wherein the step of scrambling comprises a 
step of generating a pseudorandom number used to form the reversible and deterministic 
pattern. 

32. A method for securing a program against unauthorized copying, 
comprising the steps of: ^ 

separating program code according to sequences of nonbranch instructions 
and branch instructions; 

compressing the ^n-br^rich instructions to form a first set of compressed 

data; 

compressing the b&nch instructions to form a second set of compressed 

data; and 

encrypting th^ first and second sets of compressed data. 



